Integer underflow in the cupsRasterReadPixels function in filter/raster.c in CUPS before 2.0.2 allows remote attackers to have unspecified impact via a malformed compressed raster file, which triggers a buffer overflow.
{ "binaries": [ { "binary_name": "cups", "binary_version": "1.7.2-0ubuntu1.5" }, { "binary_name": "cups-bsd", "binary_version": "1.7.2-0ubuntu1.5" }, { "binary_name": "cups-client", "binary_version": "1.7.2-0ubuntu1.5" }, { "binary_name": "cups-common", "binary_version": "1.7.2-0ubuntu1.5" }, { "binary_name": "cups-core-drivers", "binary_version": "1.7.2-0ubuntu1.5" }, { "binary_name": "cups-daemon", "binary_version": "1.7.2-0ubuntu1.5" }, { "binary_name": "cups-dbg", "binary_version": "1.7.2-0ubuntu1.5" }, { "binary_name": "cups-ppdc", "binary_version": "1.7.2-0ubuntu1.5" }, { "binary_name": "cups-server-common", "binary_version": "1.7.2-0ubuntu1.5" }, { "binary_name": "libcups2", "binary_version": "1.7.2-0ubuntu1.5" }, { "binary_name": "libcups2-dev", "binary_version": "1.7.2-0ubuntu1.5" }, { "binary_name": "libcupscgi1", "binary_version": "1.7.2-0ubuntu1.5" }, { "binary_name": "libcupscgi1-dev", "binary_version": "1.7.2-0ubuntu1.5" }, { "binary_name": "libcupsimage2", "binary_version": "1.7.2-0ubuntu1.5" }, { "binary_name": "libcupsimage2-dev", "binary_version": "1.7.2-0ubuntu1.5" }, { "binary_name": "libcupsmime1", "binary_version": "1.7.2-0ubuntu1.5" }, { "binary_name": "libcupsmime1-dev", "binary_version": "1.7.2-0ubuntu1.5" }, { "binary_name": "libcupsppdc1", "binary_version": "1.7.2-0ubuntu1.5" }, { "binary_name": "libcupsppdc1-dev", "binary_version": "1.7.2-0ubuntu1.5" } ], "availability": "No subscription required", "ubuntu_priority": "medium" }